CVE-2024-34644

Name of the Vulnerable Software and Affected Versions Dressroom versions prior to SMR Sep-2024 Release 1

Description The issue is related to improper access control in item selection, allowing local attackers to access protected data. User interaction is required to trigger this issue. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations For versions prior to SMR Sep-2024 Release 1, update to SMR Sep-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive data in the Dressroom until the update is applied.